the pied piper
DESCRIPTION
My presentation for MalCon-2012. Videos are missing here as they were huge in size.TRANSCRIPT
![Page 1: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/1.jpg)
The Pied Piper. Atul Alex,
MalCon Team.
![Page 2: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/2.jpg)
Mobile devices & “Security”
¤ Too many platforms to deal with.
¤ Too many restrictions on various tasks.
¤ “Encryption”.
¤ Software based attacks are becoming close to impossible.
![Page 3: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/3.jpg)
The funny little jack!
![Page 4: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/4.jpg)
Features?
¤ Using Voice dial feature to make & receive phone calls.
¤ Controlling the “Music Player”.
¤ Compatible devices : Wired Headsets, Bluetooth Headsets, In-Car Bluetooth Handsfree , external speakers & few others.
¤ Not a new technology & supported by most of the “mobile device” manufacturers.
![Page 5: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/5.jpg)
![Page 6: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/6.jpg)
Interesting facts!
¤ Headsets when plugged in, all audio output/input is routed through them by the phone & handset speakers/mic are usually* muted/disabled.
¤ The audio output voltage typically lies between 1~2.5v on phones/mobile devices.
¤ Almost all events on the phone are notified to the user with the help of corresponding tones/sounds.
![Page 7: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/7.jpg)
Kung-Foo time!
¤ What if, we added a microcontroller to the headset’s circuit to do malicious things?
¤ Easily Possible stuff : ¤ Initiate phone calls without user interaction. ¤ Note duration of phone calls. ¤ Detect incoming/outgoing calls, sms & so on.
¤ Not so Easy yet possible stuff: ¤ Record dialed numbers on the phone’s keypad. ¤ Enumerate all contact-names in the phonebook. ¤ Record phone calls. ¤ Can be remotely activated to carry out any of these tasks.
![Page 8: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/8.jpg)
Electronics Skill level : n00b--
![Page 9: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/9.jpg)
The universal feature.
![Page 10: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/10.jpg)
¤ Video of my Arduino circuit starting voice dial on all platforms. (iOS, Blackberry, Windows Phone-Lumia & Android-ZTE Blade)
![Page 11: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/11.jpg)
Automatic phone calls through the Headset.
![Page 12: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/12.jpg)
¤ Video demonstrating my Arduino circuit initiating a phone call on its own by “speaking” instead of the head-set’s microphone.
![Page 13: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/13.jpg)
Detecting important events
![Page 14: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/14.jpg)
¤ Video of detecting everytime a phone call is initiated & when it ends.
![Page 15: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/15.jpg)
Enumerating “Contact” list.
![Page 16: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/16.jpg)
¤ Video that enumerates contacts-list on my Blackberry
![Page 17: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/17.jpg)
The Keypad-Logger
![Page 18: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/18.jpg)
¤ Video of detecting numbers dialed on the phone’s keypad (Android based ZTE Blade) through just TRRS jack.
![Page 19: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/19.jpg)
Things am currently working on (To-Do) :
¤ Record calls, contacts, dialed numbers to a Micro-SD Card & play it back over voice calls.
¤ Shrink the whole circuit to fit in your regular headset models.
¤ Looking into advanced stuff using SIRI & the Android’s voice action/search features.
![Page 20: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/20.jpg)
Facts:
![Page 21: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/21.jpg)
Facts:
![Page 22: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/22.jpg)
Mitigation!
![Page 23: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/23.jpg)
Questions please!
![Page 24: The Pied Piper](https://reader031.vdocument.in/reader031/viewer/2022020123/558fcac21a28abf8388b45da/html5/thumbnails/24.jpg)
Thank you!
¤ Atul Alex Cherian.
¤ Blog : aodrulez.blogspot.in
¤ Twitter : Aodrulez
¤ Email : [email protected]